Resistance of SNOW 2.0 Against Algebraic Attacks

Billet, Olivier; Gilbert, Henri

doi:10.1007/978-3-540-30574-3_3

Resistance of SNOW 2.0 Against Algebraic Attacks

Olivier Billet¹⁷ &
Henri Gilbert¹⁷

Conference paper

1671 Accesses
19 Citations
3 Altmetric

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 3376))

Abstract

SNOW 2.0, a software oriented stream cipher proposed by T. Johansson and P. Ekdahl in 2002 as an enhanced version of the NESSIE finalist SNOW 1.0, is usually considered as one of the strongest stream ciphers designed so far. This paper investigates the resistance of SNOW 2.0 against algebraic attacks. This is motivated by the fact that the main source of non-linearity in SNOW 2.0 comes from a permutation build upon the AES S-box, which inputs and outputs are well known to be related by numerous quadratic equations. We show that a slightly modified version of SNOW 2.0 is susceptible to an algebraic attack with time complexity about 2⁵⁰, and which requires no more than 1000 words of output. We then explore various ways to extend this attack to the actual stream cipher.

This is a preview of subscription content, log in via an institution.

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Cho, J.Y., Pieprzyk, J.: Algebraic attacks on SOBER-t32 and SOBER-128. In: Roy, B., Meier, W. (eds.) FSE 2004. LNCS, vol. 3017, pp. 49–64. Springer, Heidelberg (2004)
Chapter Google Scholar
Coppersmith, D., Halevi, S., Jutla, C.S.: Cryptanalysis of stream ciphers with linear masking. In: Yung, M. (ed.) CRYPTO 2002. LNCS, vol. 2442, pp. 515–532. Springer, Heidelberg (2002)
Chapter Google Scholar
Coppersmith, D., Krawczyk, H., Mansour, Y.: The shrinking generator. In: Stinson, D.R. (ed.) CRYPTO 1993. LNCS, vol. 773, pp. 22–39. Springer, Heidelberg (1994)
Google Scholar
Courtois, N.T.: Algebraic attacks on combiners with memory and several outputs. Cryptology ePrint Archive, Report 2003/125 (2003), http://eprint.iacr.org/
Courtois, N.T.: Fast algebraic attacks on stream ciphers with linear feedback. In: Boneh, D. (ed.) CRYPTO 2003. LNCS, vol. 2729, pp. 176–194. Springer, Heidelberg (2003)
Chapter Google Scholar
Courtois, N.T., Meier, W.: Algebraic attacks on stream ciphers with linear feedback. In: Biham, E. (ed.) EUROCRYPT 2003. LNCS, vol. 2656, pp. 345–359. Springer, Heidelberg (2003)
Chapter Google Scholar
Courtois, N.T., Pieprzyk, J.: Cryptanalysis of block ciphers with overdefined systems of equations. In: Zheng, Y. (ed.) ASIACRYPT 2002. LNCS, vol. 2501, pp. 267–287. Springer, Heidelberg (2002)
Chapter Google Scholar
Ekdahl, P., Johansson, T.: SNOW – a new stream cipher (2000), Submission can be downloaded at http://www.cryptonessie.org
Ekdahl, P., Johansson, T.: A new version of the stream cipher SNOW. In: Nyberg, K., Heys, H.M. (eds.) SAC 2002. LNCS, vol. 2595, pp. 47–61. Springer, Heidelberg (2003)
Chapter Google Scholar
Faugère, J.-C.: A New Efficient Algorithm for Computing Groebner Bases without Reduction to Zero (F5). In: Proceedings of ISSAC, pp. 75–83. ACM Press, New York (2002)
Google Scholar
Fluhrer, S.R., Mantin, I., Shamir, A.: Weaknesses in the key scheduling algorithm of rc4. In: Vaudenay, S., Youssef, A.M. (eds.) SAC 2001. LNCS, vol. 2259, pp. 1–24. Springer, Heidelberg (2001)
Chapter Google Scholar
Halevi, S., Coppersmith, D., Jutla, C.S.: SCREAM: A software-efficient stream cipher. In: Daemen, J., Rijmen, V. (eds.) FSE 2002. LNCS, vol. 2365, pp. 195–209. Springer, Heidelberg (2002)
Chapter Google Scholar
Hawkes, P., Rose, G.G.: Guess-and-determine attacks on snow. In: Nyberg, K., Heys, H.M. (eds.) SAC 2002. LNCS, vol. 2595, pp. 37–46. Springer, Heidelberg (2003)
Chapter Google Scholar
National Institute of Standards and Technology. Advanced encryption standard. FIPS publication 197 (2001), http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf
Robshaw, M.J.B., Murphy, S.: Essential Algebraic Structure within the AES. In: Yung, M. (ed.) CRYPTO 2002. LNCS, vol. 2442, pp. 1–16. Springer, Heidelberg (2002)
Google Scholar
Watanabe, D., Biryukov, A., de Cannière, C.: A distinguishing attack on SNOW 2.0 with linear masking method. In: Matsui, M., Zuccherato, R. (eds.) SAC 2003. LNCS, vol. 3006. Springer, Heidelberg (2004)
Chapter Google Scholar

Download references

Author information

Authors and Affiliations

France Télécom R&D, 38–40, rue du Général Leclerc, 92794, Issy les Moulineaux Cedex 9, France
Olivier Billet & Henri Gilbert

Authors

Olivier Billet
View author publications
You can also search for this author in PubMed Google Scholar
Henri Gilbert
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Department of Combinatorics & Optimization, University of Waterloo,
Alfred Menezes

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Billet, O., Gilbert, H. (2005). Resistance of SNOW 2.0 Against Algebraic Attacks. In: Menezes, A. (eds) Topics in Cryptology – CT-RSA 2005. CT-RSA 2005. Lecture Notes in Computer Science, vol 3376. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-30574-3_3

Download citation

DOI: https://doi.org/10.1007/978-3-540-30574-3_3
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-24399-1
Online ISBN: 978-3-540-30574-3
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics